$ rpki-client -vvf repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/3230322e3138302e35352e302f32342d3234203d3e203338313435.roa File: 3230322e3138302e35352e302f32342d3234203d3e203338313435.roa (raw, json) Hash identifier: SjnwpKi1JCVbhwIXLEs/r82n8qCMkUN4R4DIR3vyOSc= Subject key identifier: 87:AB:5B:9D:1C:3E:B7:C3:3E:E3:15:C8:93:55:CE:99:18:F2:03:71 Certificate issuer: /CN=365454AF0090F9E623861AF2120855412F7447D1 Certificate serial: 63B65BCBC20A4423F3CBDCA5DD81FCCC1888C975 Authority key identifier: 36:54:54:AF:00:90:F9:E6:23:86:1A:F2:12:08:55:41:2F:74:47:D1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/365454AF0090F9E623861AF2120855412F7447D1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/3230322e3138302e35352e302f32342d3234203d3e203338313435.roa Signing time: Thu 12 Sep 2024 06:00:00 +0000 ROA not before: Thu 12 Sep 2024 05:55:00 +0000 ROA not after: Thu 11 Sep 2025 06:00:00 +0000 asID: 38145 IP address blocks: 202.180.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/365454AF0090F9E623861AF2120855412F7447D1.crl rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/365454AF0090F9E623861AF2120855412F7447D1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/365454AF0090F9E623861AF2120855412F7447D1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:b6:5b:cb:c2:0a:44:23:f3:cb:dc:a5:dd:81:fc:cc:18:88:c9:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=365454AF0090F9E623861AF2120855412F7447D1 Validity Not Before: Sep 12 05:55:00 2024 GMT Not After : Sep 11 06:00:00 2025 GMT Subject: CN=87AB5B9D1C3EB7C33EE315C89355CE9918F20371 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:1c:66:ba:68:4a:b3:61:98:b8:06:1f:39:6e: c1:d5:87:64:68:bc:a8:37:6d:1e:5c:0e:96:0a:17: 0a:5b:dc:c6:df:a4:35:cc:8a:16:cf:67:e7:5d:db: 6f:32:cc:56:34:43:4d:dd:94:ad:df:b9:f8:ea:ea: 32:aa:5b:07:be:51:8b:40:f4:ee:47:23:46:17:dc: 69:7f:79:75:ea:a5:8e:67:b1:f2:39:f3:f3:11:8b: 3e:2f:bd:15:81:74:00:b4:3f:a4:ee:02:61:6c:85: 20:40:6a:48:47:19:d2:46:d0:de:8d:b9:1e:ff:3d: 01:13:ff:a8:cd:ee:39:ec:8d:2a:e3:fd:d3:4a:0b: 9d:b9:98:d5:a0:7e:28:22:d5:06:f3:a0:23:37:1e: f2:5e:35:a0:ef:cf:8e:ef:18:35:c2:9d:1b:af:85: 36:45:5d:d1:70:ba:a0:ae:0b:7f:9f:00:99:aa:e7: c2:73:df:98:cd:e1:f2:b3:e0:69:c9:e5:8c:ee:d7: 08:92:84:e9:7d:dd:10:c3:96:6b:1c:01:86:3c:e4: 4c:78:2a:c1:5a:a1:81:fc:5f:75:5f:83:f2:d1:59: f4:4a:bb:65:05:41:6d:21:7a:1c:0d:09:93:f1:a0: fe:29:e0:28:7a:5e:f7:bd:2d:a2:62:2e:49:f5:bc: ce:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:AB:5B:9D:1C:3E:B7:C3:3E:E3:15:C8:93:55:CE:99:18:F2:03:71 X509v3 Authority Key Identifier: keyid:36:54:54:AF:00:90:F9:E6:23:86:1A:F2:12:08:55:41:2F:74:47:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/365454AF0090F9E623861AF2120855412F7447D1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/365454AF0090F9E623861AF2120855412F7447D1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/3230322e3138302e35352e302f32342d3234203d3e203338313435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.180.55.0/24 Signature Algorithm: sha256WithRSAEncryption 47:08:a6:8a:22:b9:1d:15:93:35:ac:ab:bb:8b:70:94:2b:e3: 28:03:d3:17:19:7d:28:01:57:3a:df:39:22:85:cc:93:75:5d: ca:9b:0a:0c:b9:d6:49:fa:30:75:28:f0:59:8f:d1:85:31:97: b0:25:36:6e:a7:69:96:27:0b:f7:ab:f8:cc:1a:df:40:97:a3: 35:66:b2:5d:e7:cf:23:a3:bf:ab:54:be:a6:eb:ae:40:31:bf: f4:40:95:57:f3:8e:6e:ad:aa:b8:42:c5:f9:48:04:ca:43:50: 4d:31:a3:ee:73:6d:0c:d2:c1:3d:6c:1d:e8:4c:4c:56:e7:48: c4:89:5c:3d:3e:0a:38:f0:2f:83:cd:5e:5c:2e:8e:39:b8:0a: 99:e8:73:fb:b2:14:58:02:cd:37:6b:e3:8a:cd:f0:dd:33:85: 7d:fe:51:2c:bb:e0:26:bb:e0:f3:7a:e4:fc:cb:c3:a1:9a:f3: 37:67:d8:53:2c:97:ad:75:07:21:bf:0f:f9:1b:f1:10:41:cf: 14:c3:c6:63:88:4b:a3:73:71:d4:dd:83:a6:bc:15:c9:f4:df: 87:e9:e7:34:b1:10:97:33:0d:c8:10:41:9e:80:29:c7:06:d8: fe:37:0d:37:28:1a:a1:6f:88:79:8a:43:b7:1d:1f:6d:f3:02: c1:56:84:c6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUY7Zby8IKRCPzy9yl3YH8zBiIyXUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzY1NDU0QUYwMDkwRjlFNjIzODYxQUYyMTIwODU1NDEy Rjc0NDdEMTAeFw0yNDA5MTIwNTU1MDBaFw0yNTA5MTEwNjAwMDBaMDMxMTAvBgNV BAMTKDg3QUI1QjlEMUMzRUI3QzMzRUUzMTVDODkzNTVDRTk5MThGMjAzNzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeHGa6aEqzYZi4Bh85bsHVh2Ro vKg3bR5cDpYKFwpb3MbfpDXMihbPZ+dd228yzFY0Q03dlK3fufjq6jKqWwe+UYtA 9O5HI0YX3Gl/eXXqpY5nsfI58/MRiz4vvRWBdAC0P6TuAmFshSBAakhHGdJG0N6N uR7/PQET/6jN7jnsjSrj/dNKC525mNWgfigi1QbzoCM3HvJeNaDvz47vGDXCnRuv hTZFXdFwuqCuC3+fAJmq58Jz35jN4fKz4GnJ5Yzu1wiShOl93RDDlmscAYY85Ex4 KsFaoYH8X3Vfg/LRWfRKu2UFQW0hehwNCZPxoP4p4Ch6Xve9LaJiLkn1vM4hAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUh6tbnRw+t8M+4xXIk1XOmRjyA3EwHwYDVR0j BBgwFoAUNlRUrwCQ+eYjhhryEghVQS90R9EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 Nzk4NGUzYS00OGY5LTRjZGEtYmU2Yy00MDA2YzA4ZjhmZDIvMC8zNjU0NTRBRjAw OTBGOUU2MjM4NjFBRjIxMjA4NTU0MTJGNzQ0N0QxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzY1NDU0QUYwMDkwRjlFNjIzODYxQUYyMTIwODU1NDEyRjc0 NDdEMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU3OTg0ZTNhLTQ4ZjktNGNkYS1i ZTZjLTQwMDZjMDhmOGZkMi8wLzMyMzAzMjJlMzEzODMwMmUzNTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMq0NzANBgkqhkiG 9w0BAQsFAAOCAQEARwimiiK5HRWTNayru4twlCvjKAPTFxl9KAFXOt85IoXMk3Vd ypsKDLnWSfowdSjwWY/RhTGXsCU2bqdplicL96v4zBrfQJejNWayXefPI6O/q1S+ puuuQDG/9ECVV/OObq2quELF+UgEykNQTTGj7nNtDNLBPWwd6ExMVudIxIlcPT4K OPAvg81eXC6OObgKmehz+7IUWALNN2vjis3w3TOFff5RLLvgJrvg83rk/MvDoZrz N2fYUyyXrXUHIb8P+RvxEEHPFMPGY4hLo3Nx1N2DprwVyfTfh+nnNLEQlzMNyBBB noApxwbY/jcNNygaoW+IeYpDtx0fbfMCwVaExg== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:37 2024 by rpki-client on console-ams.rpki-client.org